Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/d04f1b-074c-495e-a431-76b1ae62f072/1/nXXPbGAZ8FnkZeTesgTNJCvUtGU.mft
File: nXXPbGAZ8FnkZeTesgTNJCvUtGU.mft (raw, json)
Hash identifier: T50fYE7lJ7J0Tu8F4EhbLAQKhEYkbJrA8tx3BbZTH0E=
Subject key identifier: 59:8F:31:9A:1D:46:07:00:64:4E:EA:3C:A3:B4:01:34:1D:5E:FA:63
Authority key identifier: 9D:75:CF:6C:60:19:F0:59:E4:65:E4:DE:B2:04:CD:24:2B:D4:B4:65
Certificate issuer: /CN=9d75cf6c6019f059e465e4deb204cd242bd4b465
Certificate serial: 0196AAD58ABE6CA20FB012D8AEAD7471A7BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nXXPbGAZ8FnkZeTesgTNJCvUtGU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/d04f1b-074c-495e-a431-76b1ae62f072/1/nXXPbGAZ8FnkZeTesgTNJCvUtGU.mft
Manifest number: 114C
Signing time: Wed 07 May 2025 13:00:43 +0000
Manifest this update: Wed 07 May 2025 13:00:43 +0000
Manifest next update: Thu 08 May 2025 13:00:43 +0000
Files and hashes: 1: k3gz5duj9CFhYELeViKRfCBvdLQ.roa (hash: sqXEDoIPEFamPJfQ+MXgutDdyy3EAS9+6SZZLlnP/eE=)
2: nXXPbGAZ8FnkZeTesgTNJCvUtGU.crl (hash: XolRNYkNz2l/m/3lcWW+uJqcl8gQuuYIQ7nxGCJu7kw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/d04f1b-074c-495e-a431-76b1ae62f072/1/nXXPbGAZ8FnkZeTesgTNJCvUtGU.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/d04f1b-074c-495e-a431-76b1ae62f072/1/nXXPbGAZ8FnkZeTesgTNJCvUtGU.mft
rsync://rpki.ripe.net/repository/DEFAULT/nXXPbGAZ8FnkZeTesgTNJCvUtGU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 13:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:aa:d5:8a:be:6c:a2:0f:b0:12:d8:ae:ad:74:71:a7:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d75cf6c6019f059e465e4deb204cd242bd4b465
Validity
Not Before: May 7 13:00:43 2025 GMT
Not After : May 8 13:00:43 2025 GMT
Subject: CN=598f319a1d460700644eea3ca3b401341d5efa63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:bf:ea:32:6d:bc:14:e7:8c:33:70:68:bf:a2:
90:51:dd:cd:02:38:ba:0a:4a:89:b4:61:70:39:c7:
e5:b7:bc:cc:a1:22:bb:aa:fd:fb:e6:79:1a:01:b6:
71:9a:3f:30:ae:3d:1f:a4:1f:46:d0:78:4b:76:c9:
e0:07:f9:a3:c2:81:70:e2:9d:a2:ec:26:c1:c6:d5:
96:21:9b:31:bf:c9:5c:15:e8:f6:69:06:74:e2:43:
2f:f3:71:bb:b3:31:06:91:8b:07:f8:09:08:ce:c9:
dd:a4:15:8d:42:4f:3b:f0:3d:20:02:b1:b4:57:e8:
fe:e3:c8:1e:ed:50:73:75:66:81:65:52:d2:dc:89:
14:60:f5:b7:01:cd:8d:eb:f5:c0:36:f0:4b:f7:54:
47:39:b6:4e:ac:90:ba:39:de:0a:ce:d6:45:52:b2:
75:7e:ae:bf:b8:91:23:94:cf:f5:a5:41:5f:1c:9c:
cd:d2:37:7a:03:b9:0f:10:84:5c:b6:b4:5e:e3:52:
33:55:0d:b5:4b:64:66:12:b7:8c:e4:a9:01:70:9d:
8c:85:34:aa:3c:7b:bd:72:a1:26:30:62:ae:94:c2:
e6:52:f3:94:99:36:86:2d:83:3b:01:03:3d:4f:1d:
67:ad:3b:57:ef:50:f8:ca:6a:60:4f:41:c3:7e:66:
e7:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:8F:31:9A:1D:46:07:00:64:4E:EA:3C:A3:B4:01:34:1D:5E:FA:63
X509v3 Authority Key Identifier:
keyid:9D:75:CF:6C:60:19:F0:59:E4:65:E4:DE:B2:04:CD:24:2B:D4:B4:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nXXPbGAZ8FnkZeTesgTNJCvUtGU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/d04f1b-074c-495e-a431-76b1ae62f072/1/nXXPbGAZ8FnkZeTesgTNJCvUtGU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/d04f1b-074c-495e-a431-76b1ae62f072/1/nXXPbGAZ8FnkZeTesgTNJCvUtGU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:5a:6a:42:78:39:b1:51:05:86:e2:14:8e:4f:4f:8a:16:4f:
19:e4:a9:94:46:de:01:80:04:5c:a5:30:f3:77:99:03:01:b4:
71:bd:ad:31:5f:cc:c5:8b:06:c9:cf:ba:b7:61:40:38:96:54:
f5:fa:86:bd:fc:a5:d3:e1:6b:3b:8a:98:45:9b:b6:dc:78:17:
27:4b:b1:26:2b:ab:74:91:d3:7e:a8:4d:10:f4:0e:a5:e5:1e:
4f:2c:19:b8:8d:b3:ae:ed:81:3e:ec:b3:a3:ea:0e:56:4e:50:
21:cf:40:14:95:49:0c:5a:0b:3a:da:4f:ac:39:32:85:4d:80:
06:e0:b7:03:f6:55:22:15:97:2a:ce:68:cf:c5:b5:7f:71:37:
a6:0c:48:39:95:6f:ea:a1:0c:19:e3:63:6f:0e:bb:2d:10:b7:
e3:77:91:e6:f6:13:37:c2:28:97:d5:b3:fb:59:d7:83:43:77:
ce:c3:47:1a:d0:fb:4f:12:52:e6:e1:50:ad:a5:1c:6e:07:be:
4d:51:9d:9f:08:01:ce:b5:71:c0:be:06:06:1a:e3:8c:74:a9:
e7:da:a7:e7:fc:2f:e6:56:b9:ec:f3:cc:b8:98:9d:4e:be:f1:
d7:bc:59:49:a9:3d:47:d1:49:c2:02:53:53:7b:10:7f:28:18:
23:86:08:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 22:45:48 2025 by rpki-client